Vidéos d'aide de Screencast

Vault Proxy question

Created: 26 Fév. 2013 • Updated: 19 Mars 2013 | 3 comments
Ce problème a été résolu. Voir la solution.

We upgraded to exchange 2010 back in June of 2012 and we've had to tell people to VPN in first before opening outlook to retrieve their vaulted message but now we've finally upgraded EV from 9.02 32 bit to 10.3 64 bit server and want to take care of the proxy as well. We we're going to open it up using a cert/SSL and a proxy name of . Will be using our load balancer with external IP to pass the request to internal vault server. We've done that will several items already so we know that will work. My question is on the vault server will I need to do a redirect on the root website to ? and when I do that what folders under default website will need the SSL checked, etc, etc.


Carl Swanson


Discussion Filed Under:

Commentaires CommentairesAccéder au dernier commentaire

l'image des JesusWept3

Well really it would just be the /EnterpriseVault/ directory
unless you want to have remote access to EVOM (/MonitoringWebApp/) etc

But yeah, typically you would just publish .>

Then you would set your RPC over HTTP URL through the Exchange Mailbox Policies to go to

Also make sure that you have the policy set to try the internal server first, because if you have Outlook 2007+, they all switch to Outlook Anywhere mode if they detect a slow connection at any point, and when that happens, EV detects this as RPC over HTTP (because essentially, it is) and will then start using the RPC over HTTP URL that you set.

So internally you still want it to go to and not going outside the network just to come back inside the network

and then if you use OWA, you would want to update EnterpriseVault_ExternalWebAppURL option in the web.config files so that it uses the URL when people attempt to access Archive Explorer and Browser search correctly

l'image des Carl Swanson


We're using checkpoint and according to our Network/Firewall person checkpoint can publish it but the way things are done here that would mean breaking open the SSL packet and a whole bunch of other stuff.

We would not be piggy backing on our owa address which is  we would be using one specifc for EV.

l'image des JesusWept3

fair enough, itd be the same procedure, just different URL